Vulnerabilities > CVE-2023-22339 - Unspecified vulnerability in Contec Conprosys HMI System

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
contec
NVD
Published: 2023-01-20
Updated: 2023-01-26

Summary

Improper access control vulnerability in CONPROSYS HMI System (CHS) Ver.3.4.5 and earlier allows a remote unauthenticated attacker to bypass access restriction and obtain the server certificate including the private key of the product.

Vulnerable Configurations

Part Description Count
Application
Contec
5

References